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Abstract 

In this paper, we present an extension of A/x-calculus called A/z ++ - 
calculus which has the following properties: subject reduction, strong 
normalization, unicity of the representation of data and thus confluence 
only on data types. This calculus allows also to program the parallel-or. 

1 Introduction 

There are now many type systems which are based on classical logic ; among 
the best known are the system LC of J.-Y. Guard [2], the A/i-calulus of M. 
Parigot [6], the A c -calculus of J.-L. Krivine [3] and the A s ^ m -calculus of F. Bar- 
banera and S. Berardi [1]. We consider here the A/x-calculus because it has very 
good properties: confluence, subject reduction and strong normalization. On 
the other hand, we lose in this system the unicity of the representation of data. 
Indeed, there are normal closed terms, different from Church integers, typable 
by integer type (they are called classical integers). The solutions which were 
proposed to solve this problem consisted in giving algorithms to find the value of 
classical integers ([5], [7]). Moreover the presentation of typed A/Lt-calculus is not 
very natural. For example, we do not find a closed A/x-term of type -i->A — > A. 
In this paper, we present an extension of A/i-calculus called A/i ++ -calculus which 
codes exactly the second order classical natural deduction. The system we pro- 
pose contains a non deterministic simplification rule which allows a program to 
be reduced to one of its subroutines. This rule can be seen as a complicated 
garbage collector. This calculus which we obtain has the following proper- 
ties: subject reduction, strong normalization, unicity of the representation of 
data and thus confluence only on data types. This calculus allows also to pro- 
gram the parallel-or. 

Acknowledgement. We wish to thank C. Raffalli for helpful discussions. We 
do not forget the numerous corrections and suggestions by N. Bernard. 
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2 A^-calculus 



2.1 Pure A/x-calculus 

A/z-calculus has two distinct alphabets of variables: the set of A- variables x, y, z, 
and the set of /x-variables a, (3, 7,.... Terms (also called A/z-terms) are defined 
by the following grammar: 

t := x \ Xxt \ (tt) \ /J,a[/3]t 

The reduction relation of A/x-calculus is induced by fives different notions of 
reduction : 

The computation rules 

(Xxuv) ~~> u[x := v] (c\) 
(/lawn) — > {iau[a :=* v] (c M ) 

where u[a :—* v] is obtained from u by replacing inductively each subterm of 
the form [a]w by [a](w v) 

The simplification rules 

[a}^i(3u — > u{(3 := a] (s\) 
fj,a[a]u — > u (*) (s 2 ) 

(iati — > Air /za u[a :=* x] (**) (S3) 

(*) if a has no free occurence in u 

(**) if u contains a subterm of the form [a}\y w 

For any A/z-terms t, t', we shall write: 

- t — >™ t' if t' is obtained from t by applying n times these rules. 

- t ->!,,? if there is n G IN such that i t'. 

We have the following result ([6], [9]): 

Theorem 2.1 In X^i-calculus, the reduction —>-^ is confluent. 

2.2 Typed A/j-calculus 

Proofs are written in a second order natural deduction system with several con- 
clusions, presented with sequents. The connectives we use are _L, — > and V. We 
denote by A 1 ,A 2 ,...,A n A the formula A\ -> (A 2 -> (...(Ai -> We 
do not suppose that the language has a special constant for equality. Instead, 
we define the formula a = b (where a, b are terms) to be VX (X(a) — > X(b)) 



2 



where X is a unary predicate variable. Let E be a set of equations. We denote 
by a ~_e b the equivalence binary relation such that : if a = b is an equation of 
E, then a[x\ := ti, ...,x n := t n ] ~e b[xi := ti, ...,x n := t„]. 

Let t be a A/z-term, A a type, r = x\ : Ai, x„ : A n , A = a\ : B\, a m : B m 
are two contexts and E a set of equations. The notion "t is of type A in T and 
A with respect to E" (denoted by T h t : A, A) is defined by the following rules: 

(1) r h : A u A (1 < i < n) 

(2) If T,a; : A hi : B, A, then L h Axt : A -> B, A 

(3) If Ti h m : A B, Ai, and r 2 h u : A, A 2 , then Ti, L 2 h (u u) : B, Ai, A 2 

(4) If T h t : A, A, and x not free in T and A, then r h t : Vx ,4, A 

(5) If T h t : VxA, A, then, for every term a, T h t : A[x := a], A 

(6) If T h t : A, A, and X is not free in V and A, then rht: VX A, A 

(7) If T h i : VAT A, A, then, for every formula G, T h i : ALY := G], A 

(8) If T h t : A[x := a], A, and a k e 6, then rht: A[x := b], A 

(9) If Tl-t : A, 13 : B,A, then : 
-Th/i/? [a]i : B, a : A, A if a ^ (3 

L h fia [a]t : B, A if a = j3 

The typed A/z-calculus has the following properties ([6], [8]): 
Theorem 2.2 

1 ) Subject reduction: Type is preserved during reduction. 

2) Strong normalization: Typable \\i-terms are strongly normalizable. 

2.3 Representation of data types 

Each data type generated by free algebras can be defined by a second order for- 
mula. The type of boolean is the formula Bool[x] = VX {X(l), X(0) -> X(x)} 
where and 1 are constants. The type of integers is the formula Ent[x] = 
yx {X(0), Vy (X(y) — > X(sy)) — > X(x)} where is a constant symbol for zero, 
and s is a unary function symbol for successor. 

In the rest of this paper, we suppose that every set of equations E satisfies the 
following properties: rfi E 1 and if n ^ m, then s™(0) j&e s m (0) 

We denote by id = Ax x, \ = XxXy x, = XxXy y and, for every n G IN, 
n = XxXy (y n x) (where (y° x) — x and (y k+1 x) — (y (y k x))). It is easy to see 
that: 

Lemma 2.1 

Bool[l] andhO: Bool[0}. 
2) For every n E TN, h n : Ent[s n (0)]. 



3 



The converse of (1) lemma 2.1 is true. 

Lemma 2.2 If he {0, 1} and h t : Bool[b], then t — >^ b. 

But the converse of (2) lemma 2.1 is not true. Indeed, if we take the closed 
normal term 9 = XxXf \xct [a](f fi(3 [a](f xj), we have h 9 : Ent[s(0)]. 

3 A^i ++ -calculus 
3.1 Pure A/x ++ -calculus 

The set of A/^. ++ -terms is given by the following grammar: 

t := x | a \ Xxt | \ictt \ (t t) 

where x ranges over a set V\ of A-variables and a ranges over a set of [i- 
variables disjoint from V\. 

The reduction relation of A/i ++ -calculus is induced by eight notions of reduction: 
The computation rules 

{\xuv) — u[x :~ v] (Ca) 

(nauv) nf3u[a := \y ((3 (y v))] (C^) 

The local simplification rules 

((a u) v) — 1 (a u) (5*1 ) 

lia/iPu — ^ /j,au\j3 := id] (S2) 

(a (/?«)) - (/?«) (S 3 ) 

(PlJ.au) u[a := Xy (P y)] (S 4 ) 

The global simplification rules 

[ictu -± Xz nf3 u[a := Xy (/? (y 2))] (*) (S 5 ) 
/xa u[y := (a f )] — 1 v (**) (Se) 

(*) if u contains a subterm of the form (a Xxv) 
(**) if y is free in u and a is not free in v 

For any A/i ++ -tcrms t, f', we shall write 

- t — ^++ t' if t' is obtained from t by applying n times these rules. 
t f if there is n e IN such that t -^™++ 

Let us claim first that A^i ++ -calculus is not confluent. Indeed, if we take 
u = Xxfia((x (a 0)) (a 1)), we have (using rule Sq) u XxO and 
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u Xxl. The non confluence of A/i ++ -calculus does not come only from 

rule 5*6. Indeed, if we take v = /xcc((a /i/3/3)0), we have v naXy (a y) 

and v Q. 

The rules which are really new compared to A^-calculus are Si and Sq. The 
rule Si means that the ^(-variables are applied to more than one term. We will 
see that typing will ensure this condition. The rule Sq means that if /j,at has 
a subterm (a v) where v does not contain free variables which are bounded in 
/iat, then we can return v as result. This results in the possibility of making 
a parallel computation. It is clear that this rule is very difficult to implement. 
But for the examples and the properties we will present, the condition "not 
active binders between /ia and a" will be enough. Let us explain how we can 
implement the weak version of this rule. We suppose that the syntax of the 
terms has two A-abstractions: A and A' and two ^-abstractions: fi and //. We 
write X'xu and /i'au only if the variables x and a do not appear in u. We 
suppose also that for each fi- variable a we have a special symbol £ a . We can 
thus simulate the weak version of rule Sq by the following non deterministic 
rules: 





/ia u 
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(u v)) 
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(u v)) 




Ka 





(*) u^a 

A result of a computation is a term which does not contain symbols £ Q . 

We will see that with the exception of rule Sq the A/x ++ -calculus is not different 
from A^i-calculus. We will establish codings which make it possible to translate 
each one in to the other. 

3.2 Relation between X/j,- calculus and Xfi ++ - calculus 

We add to A/i-calculus the equivalent version of rule Sq: 

[ia [P]u[y :— [a}v] v 

if y is free in u and a is not free in v. 

We denote by A/x + -calculus this new calculus. 

For any A/z-terms t,t', we shall write : 

- t ~^™+ t' if t' is obtained from t by applying n times these rules. 
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t t' if there is n 6 IN such that t -^™ + t'. 
For each A/z-term t we define a A/i ++ -tcrm t* in the following way: 

x = x 

{\xty = \xt* 

{(u v)}* = (u* V*) 
{wWY = (*a(J3f) 

We have the following result: 

Theorem 3.1 Let u,v be Xfi-terms. If u — >™ + v, then there is m > n such that 

* * 

u M++ V . 

Proof Easy. □ 

The converse of this coding is much more difficult to establish because it is 
necessary to include the reductions of administrative redexes. We first modify 
slightly the syntax of the A/z ++ -calculus. We suppose that we have a particular 
/z-constant S (i.e. /iSu is not a term) and two other A-abstractions: A 1 and A 2 . 
The only terms build with these abstractions are: X 1 xu where u contains only 
one occurence of x and X 2 xx. For the rule C M , A, A 1 and A 2 behave in the same 
way. We write rules C M , S2, S4 and S5 in the following way: 

(fxauv) [if3u{a := A 1 ?/ ((3 (y v))] (C^) 

[ia\xfiu — fiau[(3 := X 2 xx] (S2) 

(fi m u) - u[a := X 1 y ((3 y)} (5 4 ) 

[ictu Xznf3u{a:= X 1 y((3 {y z))] (S b ) 

It is clear that the new A/i ++ -calculus is stable by reductions. 

For each A/z ++ -term t we define a A^i-term t° in the following way : 



a — Xxfij [a]x (*) 

{Xxt}° = Xxt° 

{X 1 xt}° = Xxt° 

{X 2 xx}° = Xx/i'y [6]x 

{fiat} = iia[8\t° 

{(X^uv)} = u°[x := v°] 

{(X 2 xxv)}° = yU7[<5]w° (**) 

{(uv)}° = (u° v°) (***) 
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(**) 7 is not free in v° 
(***) u + X l xw i e {1,2} 

We have the following result: 

Theorem 3.2 Let u,v be -terms. If u ~^™++ v, then there is m > n and 

a \\i-term w such that u° — w and v° — ^ w. 

Proof We use the confluence of A^i-calculus and the following lemma: 

Lemma 3.1 Letu,v be \fi ++ -terms. 

1) {u[x:=v}}° -„+ u°[x:=v°}. 

2) {u[a := X 1 y(f3 (y v))]}° -„ + u°[a :=* v°]. □ 
We deduce the following corollary: 

Corollary 3.1 Let u be a A^ ++ -term. If u° is strongly normalizable then u is 
also strongly normalizable. 

3.3 Typed A / u++-calculus 

Types are formulas of second order predicate logic constructed from _L, — > and 
V. For every formula A, we denote by ->A the formula A -^_L and by 3x A the 
formula ->A. Proofs are written in the ordinary classical natural deduction 
system. 

Let t be a A^. ++ -term, A a type, T — x\ : Ai, x n : A n , a\ : ~<Bi, a m : ->B m 
a context, and E a set of equations. We define the notion "f is of type A in T 
with respect to E" (denoted by T h' t : A) by means of the following rules 

(1) r h' x t : A, (1 < i < n) and T h' ctj : ^Bj (1 < j < to). 

(2) If T,x : A h' u : B, then T h' Am : A -> B. 

(3) If Ti h' u : A -> B, and T 2 h' w : A, then Ti, T 2 h' (u v) : B. 

(4) If r h' u : A, and x is not free in T, then r h' u : Vx A. 

(5) If r h' u : Vx A, then, for every term a, T h' « : A[x := a]. 

(6) If T K « : A, and X is not free in T, then rh'jcVIA 

(7) If r h' u : VX A, then, for every formulas GJh'u: A[AT := G]. 

(8) If T K a : A[x := a], and a w B 6, then rh'u: A [a; := &]. 

(9) If T, a : h' u :L, then T h' u : B. 

Consequently, we can give more explanations for rule 5*6. It means that "in 
a proof of a formula we cannot have a subproof of the same formula" . The 
terms fiau[y := (a v)] and v has the same type, then the rule Se authorizes 
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a program to be reduced to one of its subroutines which has the same behaviour. 

If A = cti : Bi, a m : B m , then we denode by = a\ : ->Bi, a m '■ ~^B m . 
If r = x\ : Ai,...,x n : A n ,a\ : -iBi,...,a m : ->B m , then we denote by 
T\ = xi : Ai, ...,x n : A n and L p = cti : B\, ...,a m : B m . 



We have the following results: 
Theorem 3.3 

1) //Lhi : A,A, thenT^A h' t* : A. 

2) IfT \-'t:A, then T x h t° : A^^S :± 

Proof By induction on typing. □ 



4 Theoretical properties of A^ ++ -calculus 

Theorem 4.1 (Subject reduction) 

If T h' u : A and u -± v, then T h' v : A. 

Proof It suffices to verify that the reduction rules are well typed. □ 

Theorem 4.2 (Strong normalization) 

If T h' u : A, then u is strongly normalizable. 

Proof According to the theorem 3.3 and the corollary 3.1, it is enough to show 
that the A/i+-calculus is strongly normalizable. It is a direct consequence of the 
theorem 2.2 and the following lemma: 

Lemma 4.1 Let u, v, w be \\i-terms. Ifu^'v -^^ w then there is m > n and 
a \\i-term v' such that u — >™ v' — w. □ 

Let t be a A/i ++ -term and V* a set of normal A^i ++ -terms. We write t Vt 
iff: 

for all u € Vt, t u. 
- If t u and u is normal, then u eV t - 

Intuitively V* is the set of values of t. 

Theorem 4.3 (Unicity of representation of integers) 

Ifn e IN andh't: Ent[s n (0)}, then t ^ AJ ++ {n}. 

Proof Let t be a closed normal term such that h' t : Ent[s"(0)]. Since we cannot 
use rules S4 and S5, we prove that t = XxXf u and x : X(0),f : Vy(X(y) — ► 
X(s(y))) h' u : X(s n (0)). The term u does not contain /x-variables. Indeed, if 
not, we consider a subterm (a v) of u such that v does not contain ^-variables. 
It is easy to see that v is of the form (f m x), thus u is not normal (we can apply 
rule 5*6). Therefore u = (/" x) and t = n. □ 
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5 Some programs in A^i ++ -calculus 

5.1 Classical programs 

Let X = Xxfia x, C — Xx^ia (x a) and V — Xx[ia (a (x a)). It is easy to check 
that: 

Theorem 5.1 

1) V X : VAT {-L^ X}, and, for every t, t\, t n , (X t t\...t n ) —^+4- /iat. 

2) h' C : MX {-i-iX — ► X}, and, for every t, t\, t n , (C t t\...t n ) 
pta (t Xy (a (y ti...t n ))). 

3) \-"P: VX{(^X -> X) -> X}, and, for every t,h,...,t n , (Ptt 1 ...t n ) 
Ha (a (t \y (a (y h...t n ))) h...t n ). 

Let us note that the A/^ ++ -term X simulates the exit instruction of C program- 
ming language and the A/j. ++ -term V simulates the Call/cc instruction of the 
Scheme functional language (see [4]). 

5.2 Producers of integers 

For every m, ...,n m £ IN, we define the following finite sequence (Uk)i<k<m- 
U k = (a (x XdXy (y n*) id (X U k -i))) (2 < k < to) 
and Ui = (a (x XdXy (y n\) id a)). 
Let P ni ,...,n m = Xx[Lct\J m . We have: 

Theorem 5.2 h' 

P ni ,...,n m '■ Vie {Ent[x} — > 3y Ent\y\\ , and (P ni ,...,n m Q) — 
{Xy(yn j ) ; 1 <i<m}. 

Proof For the typing, it suffices to prove that x : Ent[x],a : ^3yEnt[y] h' 

XdXy (y nk) : ->3yEnt[y] — > 3yEnt[y] (1 < k < to) and thus x : Ent[x],a : 

-dj/Ent[j/] h' C/ fe :_L (1 < k < to). 

We define the following finite sequence (Vfc)i<fc< m : 

V k = {a (XdXy (y nk) {X Vfc-i))) (2 < fc < to) and Vi = (a Ay (y m)). 

We have (P nil ...,„ m 0) Ax,ua V m Ay (y th) (1 < i < m). □ 

Let Pin = (Y F) where 

P = XxXy^ia (a (y Ad (x (s y)) id (X (a (y AdAz (z y) id a))))), Y is the Turing 
fixed point and s a A^ ++ -tcrm for successor on Church integers. It is easy to 
check that: 

Theorem 5.3 (Pin 0) -^ f _ t ++ {Xy (y to) ; to e IN}. 

We can check that h' F : V.T{Ent[x] -> 3yEnt[y]} -> Vx{Ent[x] -> 3yEnt[y]}. 
Therefore, if we add to the typed system the following rule: 

If T h' F : A -> A, then r h' (Y F) : A 



9 



we obtain h' Pin : Vx{Ent[x] — > 3j/Ent[y]}. 

It is clear that, with this rule, we lose the strong normalization property. But 
we possibly can put restrictions on this rule to have weak normalization. 

We can deduce the following corollary: 

Corollary 5.1 Let 1Z C IN be a recursively enumerable set. There is a closed 
normal X/i ++ -term P-r. such that (Pr Q) — > M ++ {m ; m G 7£}. 

5.3 Parallel-or 

Let TB = {b ; b — {0} or 6 {1}} the set of true booleans. 

A closed normal A/z ++ -term b is said to be a false boolean iff : 

b 7^ ++ Xxu 

or 

b Axu where u 7^++ Xyv and u 7^++ (x v\...v n ) 

or 

b XxXyu where u 7^++ Ayu, u 7^++ (x w\...w n ) and w 7^++ (y w\...w n ). 

We denote J 7 ^ the set of false booleans. Intuitively a false boolean is thus a 
term which can give the first informations on a true boolean before looping. 

Let B = TB U TB the set of booleans. 

We said that a closed normal A/i ++ -tcrm T is a parallel-or iff for all 61, 62 € B: 
(Th b 2 ) {0,1} ; 

(T bi b 2 ) I iff h -> A1 ++ 1 or b 2 1 ; 

(T bi 62) ->>++ iff 61 -^++ and b 2 -^++ 0. 

Let or be a binary function defined by the following set of equations : 

or(l, x) = 1 or(0, x) = x or(x, 1) = 1 or(x, 0) = x 

Let V = XxXy^a (a (x 1 (y 1 0) (X (a (y 1 (x 1 0) a))))) where 1 = Ap 1 and 

6 = x P o. 

Theorem 5.4 h' V : VxVy {J3oo?[x], 5oo/[y] — > Bool[or(x, y)]} and \J is a 
parallel-or. 

Proof Let B[x] = -.Bool[x] Bool[x]. 

x : Bool[x] h' x : B[l], B[0] -> B[x], then x : Bool [2;] h' (x 1 0) : B[x]. 

In the same way we prove that y : Bool[y] h' (y 1 0) : £%]. 

y : Boo%] h' y ': B[l],B[x] ^ B[or(x, y)], then 

x : Bool[x],y : Bool[y] h' (y 1 (x 1 0)) : Bool[or(x, y)], therefore 
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a : -iBool[or(x, y)], x : Bool[x],y : Boo%] h' (a (y 1 (x 1 0) a))) :_L and 

a : ^Bool[or(x,y)],x : Bool[x],y : Boo%] h' (X (a (y 1 (x 1 0) a)))) : 

-iBool[or(x, y)]. 

x : Bool[x] h' x : B[l], B[y] -> B[or{x,y% then 

x : Bool[x],y : Bool[y] h' (x 1 (y 1 0)) : £?[or(x,y)], therefore 

a : -.Bool[or(x, y)], x : Bool[x], y : Boo%] h' (x 1 (y 1 0) (J (a (y 1 (x 1 6) a))) : 

Bool[or(x, y)]. 

And finally : h' V/ : VxVy {Bool[x], Bool[y] Bool[or(x, y)]}. 

We will make three examples of reductions. Let bi,b 2 ,b 3 G 2? such that &i — 
{0}, 6 2 {1} and 6 3 XxXyu where u 7%++ Ay«, u 7^++ (x wi...w n ) 

and w tA m ++ (y ioi...tu„). We will reduce (V h b 3 ), (\J b 2 63), and (V 63 b 2 ). 

The reductions of i?i = (63 1 0) and R 2 — (63 1 (6, 1 0) a))) do not terminate, 
and a is free in each R such that R 2 -R- Therefore, the only way to be 

compute (V 61 63) and (V b 2 63) are the following: 

(V 61 63) 

-^++ (a (0 1 R[ (1 (a R' 2 )))) 

-^++ m (a (R'{ (J (a J^')))) 
-V+ ... 

Then the computation does not terminate. 

(V &2 63) 

R' 2 )))) 

(a R' 2 '))) 

~V+ ••• 

m (« I) I- 

The reductions of R3 = (63 1 (b 2 1 0)) and R4 = (63 1 0) do not terminate. 
Therefore, the only way to compute (V 63 b 2 ) is the following: 

(V h 62) 

(a (R[ (J (a ((1 1 R' 4 ) a))))) 

-V+ ... 

(J?'/(J(a (1 a))))) 
-^++ M <* (a (J?f (1 (a 1)))) 

->>++ 1. □ 
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